Omar Abdelqawey

Roles & Responsibilities :-

Manage our internal and external audits programs against ISO 27001/PCI and perform compliance reviews.
Manage Vodafone third party assessment including Vodafone outsourced companies
Manage all audit program performed including :
o Vodafone Group security audit (more than 4 audits per year)
o Independent company security audit (Deloittee - PWC)
Manage telecom security base line program applied across all Vodafone OPCO including:
o Vodafone Group communication handling
o Communicate all risks and controls mitigation to technical owner
o Check the applicability of the control mitigation or compensation control availability
Prepare management reports regarding compliance operations and progress.
Manage all risks reported from inside Vodafone Egypt or reported from Vodafone group including:
o Risk reporting
o Risk communication
o Risk mitigation
o Risk register update
Verify that all firm and regulatory policies and procedures have been documented, implemented, and communicated.
Conduct periodic internal reviews and audits to ensure that compliance procedures are followed.
Develops, initiates, maintains, and revises policies and procedures for the general operation of the Compliance Program and its related activities to prevent illegal, unethical, or improper conduct. Manages day-to-day operation of the Program.
Responds to alleged violations of rules, regulations, policies, procedures, and Standards of Conduct by evaluating or recommending the initiation of investigative procedures. Develops and oversees a system for uniform handling of such violations.
Performing system scanning (O.S , DB and website) against predefined vulnerabilities using smart tools (Appdetective, CCS and webinspect)
Develop patching policy apply/review base line patching on all critical systems & IT data center